Core Docs - Engagement - Configure Sign-Up Permissions

Rock Version: v19.0
Last Modified: 2026-02-17 2:56 PM

Managing security permissions within Sign-Ups can seem challenging at first. But don't worry, we're going to break it down so you can see what permissions a person needs to perform various functions, and where to set them up.

First, we'll look at the places where permissions are set up. Sign-Up permissions are granted in one of three ways:

Some permissions overlap (e.g., Edit and Manage Members) between group role permissions and group type security. This means Edit access can be given via a Leader role, or via a system Security Role. To simplify things, we'll use the phrase "group type level" to refer to both role and security settings since they're configured in the same area.

Next, we'll dive in to what happens when you set up the permissions described above. We'll use Ted Decker as our project Leader, who has access to Rock but does not have full Rock Administration permissions. We'll go through the Sign-Ups area from Ted's perspective using out-of-the-box permission configurations.

Delete Project

Note that Edit isn't the only permission that lets you delete. Security Roles or Users who have been granted Schedule permission can also delete.

Change, Remove, and Secure projects

Managing Attendee List

To add or remove attendees from the list, the person needs either Manage MembersEdit, or Schedule permissions at the project or group type levels.

Adding Sign-Up Groups

There are two ways to add sign-up groups to the list. You can add a child group to an existing group, or you can start a brand new sign-up group by adding to the top-level of the list. There's extra security needed to add top-level sign-up groups, which we'll cover below.

But before you can start adding, you need to be able to set the Project Type (In-Person or Project Due) for any new entries. To do that, you'll need Edit permission for the Project Type group attribute, accessed from the group type configuration.

If you want to add new top-level sign-up groups to the list, you'll need to update the security on the block itself. Similar to above, this requires Edit permission.